Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft
File:                     XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json)
Hash identifier:          srPb7p94OKbP46uIs6HjTGeoj3lvNzzQVAsr+rxzJwQ=
Subject key identifier:   7D:31:CB:8F:B1:B7:60:AB:E8:87:44:29:27:40:EF:13:29:51:7B:85
Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A
Certificate issuer:       /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A
Certificate serial:       01C1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft
Manifest number:          019C
Signing time:             Sun 19 Oct 2025 06:18:33 +0000
Manifest this update:     Sun 19 Oct 2025 06:18:32 +0000
Manifest next update:     Sun 26 Oct 2025 06:18:32 +0000
Files and hashes:         1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: tc9gj0kDKKNt254wikt7BS8Gwv/835Euw6/GwYNK0fI=)
                          2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=)
                          3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=)
                          4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=)
                          5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: NzwtW94OGR5LBUfhUFwuihytDl5251IuikJ6D/DeFPA=)
                          6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=)
                          7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl
                          rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:18:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 449 (0x1c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A
        Validity
            Not Before: Oct 19 06:18:32 2025 GMT
            Not After : Oct 26 06:18:32 2025 GMT
        Subject: CN=68f482b8-8d89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:57:dd:01:82:09:2d:22:72:19:04:aa:0d:40:
                    62:0b:ac:26:dd:ae:f0:5f:ad:0a:c3:ec:9f:6e:03:
                    e3:54:fb:76:fd:93:a8:28:fe:e9:53:6e:86:ce:12:
                    b5:82:09:ad:bf:df:6d:fb:cf:d8:48:a0:08:f1:65:
                    0d:be:16:d4:42:42:ac:9d:c7:87:44:e4:75:ae:4d:
                    22:58:9b:ae:42:ae:54:45:3e:70:d5:5a:e1:66:81:
                    6f:37:72:6d:6f:7f:7a:03:83:ed:96:f2:a3:65:2a:
                    c4:ec:77:57:dc:f7:2b:74:0a:d3:6b:1f:10:a4:ba:
                    f9:94:82:7e:d3:04:6e:6f:89:0b:26:cb:fe:2e:5e:
                    8e:1f:a6:60:87:d1:bb:fe:61:6a:12:3e:c8:58:c1:
                    35:e2:66:8b:16:14:ff:5c:df:ce:0b:c1:a3:8a:a9:
                    02:3a:7f:71:a5:40:b3:58:06:5d:3b:77:23:1b:b9:
                    8a:ae:a5:54:c6:d4:ef:5e:4d:da:48:40:cd:cf:3c:
                    63:5b:d8:85:48:21:db:ce:4f:f1:66:db:64:3d:33:
                    15:35:a4:e5:80:b0:f9:8b:dc:14:ed:82:c3:89:99:
                    1f:91:b9:41:19:f8:5e:4c:5c:56:04:81:35:8e:07:
                    e3:cb:03:c7:23:00:80:94:7f:18:10:75:9d:b1:df:
                    0f:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:31:CB:8F:B1:B7:60:AB:E8:87:44:29:27:40:EF:13:29:51:7B:85
            X509v3 Authority Key Identifier:
                keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:fa:c7:1c:72:eb:67:1c:94:36:21:ec:37:d4:7d:f7:d8:ee:
         86:7d:e7:19:51:9d:f2:45:a4:e1:06:b6:16:a5:32:66:56:fd:
         b5:f4:0e:21:33:89:42:d4:f4:2e:a1:42:3e:af:a2:8f:41:67:
         53:0c:b0:0a:5d:e6:9b:15:a0:42:33:ea:62:66:3a:76:9c:85:
         57:6f:f0:73:33:47:1c:b5:d6:1d:cc:a9:a0:3d:7d:d0:4f:3b:
         53:d9:3e:69:3f:ce:74:d6:fe:0b:7f:63:ea:50:15:a0:94:a6:
         df:ec:42:14:bb:93:52:e7:23:7a:06:ff:bd:61:3b:e7:f5:d5:
         05:83:45:8f:ad:ce:7d:5e:28:57:80:f6:fc:71:95:a4:e0:10:
         58:95:99:27:46:63:35:33:59:a4:d5:46:4a:f2:53:50:62:3b:
         46:bc:93:55:53:de:5c:18:e5:57:4e:35:75:4c:b0:51:b5:4d:
         dc:2b:98:20:98:0d:40:7d:d7:20:26:50:8b:1d:f7:09:a5:7d:
         c1:0c:51:52:79:84:de:3a:2a:0b:2e:c4:d6:21:53:d7:7c:6f:
         f9:fd:a1:f3:e2:54:f5:85:72:a9:18:55:df:0e:23:29:0a:f9:
         d3:3b:10:88:91:64:3d:8b:09:29:72:ad:46:83:9f:de:8b:4c:
         bc:d8:de:7d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz
RjQ5Q0UyOUEwHhcNMjUxMDE5MDYxODMyWhcNMjUxMDI2MDYxODMyWjAYMRYwFAYD
VQQDEw02OGY0ODJiOC04ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy1fdAYIJLSJyGQSqDUBiC6wm3a7wX60Kw+yfbgPjVPt2/ZOoKP7pU26GzhK1
ggmtv99t+8/YSKAI8WUNvhbUQkKsnceHROR1rk0iWJuuQq5URT5w1VrhZoFvN3Jt
b396A4PtlvKjZSrE7HdX3PcrdArTax8QpLr5lIJ+0wRub4kLJsv+Ll6OH6Zgh9G7
/mFqEj7IWME14maLFhT/XN/OC8GjiqkCOn9xpUCzWAZdO3cjG7mKrqVUxtTvXk3a
SEDNzzxjW9iFSCHbzk/xZttkPTMVNaTlgLD5i9wU7YLDiZkfkblBGfheTFxWBIE1
jgfjywPHIwCAlH8YEHWdsd8PSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0xy4+x
t2Cr6IdEKSdA7xMpUXuFMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz
NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0
cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq
TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCE+scccutnHJQ2Iew31H332O6GfecZUZ3yRaThBrYWpTJmVv219A4h
M4lC1PQuoUI+r6KPQWdTDLAKXeabFaBCM+piZjp2nIVXb/BzM0cctdYdzKmgPX3Q
TztT2T5pP8501v4Lf2PqUBWglKbf7EIUu5NS5yN6Bv+9YTvn9dUFg0WPrc59XihX
gPb8cZWk4BBYlZknRmM1M1mk1UZK8lNQYjtGvJNVU95cGOVXTjV1TLBRtU3cK5gg
mA1AfdcgJlCLHfcJpX3BDFFSeYTeOioLLsTWIVPXfG/5/aHz4lT1hXKpGFXfDiMp
CvnTOxCIkWQ9iwkpcq1Gg5/ei0y82N59
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:08:55 2025 by rpki-client